Five Ways Executives Can Optimize Cyber Security Spending

Uploaded on 2022-11-25 in TECHNOLOGY--Resilience, FREE TO VIEW, BUSINESS-Services-IT & Telecoms

In 2021, ransomware attacks cost the world over $20 billion. With cyber attacks and ransom pay-outs at a record high, CEOs are losing sleep as they struggle to find worthwhile investments that will keep their operations secure. 

Cyber security should be a top priority for any C-suite looking to avoid crippling fines for data breaches and reputational damage. However, mindlessly pouring more money into cybersecurity does not automatically result in increased preparedness. 90% of CIOs acknowledge that their companies spend millions on inefficient security solutions.

Most organizations do not have a methodology to validate and operationalize cyber security, and this is why they ultimately end up paying out attackers. But those that have cyber security best practice at the heart of their culture, will be better placed to make business savvy investments that protect their network.

When strategizing about how to operationalize their security infrastructure, organizations should concentrate on:

The Right Team - In today's hypercompetitive cyber skills market, providing expert  training has proven to be the best tool to retain the best talent .Staff thus feel valued and invested in by their employers, driving them to perform operationally effective security.

Live-Fire Security Exercises - Every professional sports team and special forces military squad has one thing in common: they train first for individual skills, then they train as a team under hyper-realist conditions to validate whether they are ready to accomplish their missions. Cybersecurity teams should follow the same process to validate whether they are ready to protect, prevent and perform operational cybersecurity best practices.

Trust, but Verify  - Verifying how businesses behave under attack, being able to separate the significant signals from the noise and knowing they have the right configurations is often the difference between being secure or being compromised.

Security is Everyone’s Problem - No matter how state-of-the-art your technology is, 85% of breaches are in fact due to human errors. Being able to emulate users' traffic, mistakes and behaviors is the real key to building cybersecurity confidence.

Executive Commitment - It takes executive commitment to be a secure organization and operation. Leaders have to talk about how security impacts brand, customers, social responsibility, and demonstrate that it is a mandatory practice for everyone.  

Test Your Security Stack

Before and after every update to a stack, whether it’s a purchase and integration or a deletion from inventory, CISOs must test their security stacks. Red team exercises allow organizations to do this while simultaneously upleveling staff. In these exercises, red teamers will act as hackers and throw everything they can think of at the company’s network.

Old and new attack tactics, techniques and procedures (TTPs) will be deployed to see what cracks and what stands strong.

CISOs and their teams should keep detailed logs of the effects of these simulated attacks on their network before and after adjustments to the security stack, so they know for the future which tools lock doors and which burst them wide open. Businesses have to ensure that both consolidation and expansion don’t lead to vulnerabilities, and that potential threats inherent within the stack itself are minimal.

Validate Your Team & Processes

Cyber training experts swear by tabletop exercises, but they’re only as good as the table they’re on if you don’t actually practice a response. CISOs need to evaluate their team’s incident response skills and make sure they have hired people who have the capabilities to identify threats and respond to them quickly and effectively.

One way to do this is through purple teaming – when red teams (acting as offense) and blue teams (acting as defense) work together to share knowledge. Purple teaming enables team members to collaborate with one another, and identify personal strengths and weaknesses. This way, staffers can significantly improve efficiency by distributing workloads appropriately to ensure their incident response procedures are coordinated. 

Following the exercise, teams should hold a post-mortem to identify if any training programs need to be developed to boost employees’ abilities. A problem addressed should always be coupled with a solution. CISOs are responsible for providing team members the tools they need to be better at their jobs and for working with them to figure out where else they may best perform on the team. 

Instill Confidence in Tech and Personnel 

After testing both the stack and personnel, CISOs should ensure every member of the team is acquainted with each tool in their stack and involve their team in the decision-making process when making adjustments. They should let their teams conduct trials with different tools before making a decision about which ones to invest in. 
 
Despite common misconceptions, CISOs aren’t just responsible for making sure their company isn’t hacked. They’re responsible for making sure their tools and people are working as a united front to keep the bad guys out and ensure that other business divisions are able to operate without disruption. Identifying gaps doesn’t just mean finding the holes in the technology or the team, but figuring out how they can be more effective together. 

CISOs may already have the tools they need to succeed in their backyard. They may also have holes in their staff or stack that are sucking in money and time and producing zero return on investment. The businesses that invest in resources that build confidence in the personnel-tech relationship will be best placed to protect their network and their bottom line.

Lee Rossey is CTO and Co-Founder of SimSpace

You Might Also Read: 

Employee Cyber Security Training Is Vital To Reduce Cyber Attacks:

 

« Navigating The Evolving Threat Landscape
Hidden In Plain Sight »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

Watch this webinar to hear security experts from Amazon Web Services (AWS) and SANS break down the myths and realities of what an NGFW is, how to use one, and what it can do for your security posture.

Shavlik Protect

Shavlik Protect

Shavlik Protect is an easy-to-use security software solution that discovers missing patches and deploys them to the entire organization.

Securi-Tay

Securi-Tay

Securi-Tay is an information Security conference held by the Ethical Hacking Society at Abertay University, Dundee.

Institute for Critical Infrastructure Technology (ICIT)

Institute for Critical Infrastructure Technology (ICIT)

ICIT is a leading cybersecurity think tank providing objective research, advisory, and education to legislative, commercial, and public-sector cybersecurity stakeholders.

tietoEVRY

tietoEVRY

TietoEVRY creates digital advantage for businesses and society. We are a leading digital services and software company with local presence and global capabilities.

EY Advisory

EY Advisory

EY is a multinational professional services firm headquartered in the UK. EY Advisory service areas include Cybersecurity.

Cyberwrite

Cyberwrite

Cyberwrite was founded to provide underwriters around the world a unique and innovative Cyber Underwriting platform.

ICT Reverse

ICT Reverse

ICT Reverse is one of the UK’s leading, fully accredited providers of ICT asset disposal and secure data erasure.

Blackfoot Cybersecurity

Blackfoot Cybersecurity

At Blackfoot, we work in partnership with you to deliver on-demand cyber security expertise and assurance, keeping you one step ahead of threats & compliant with regulations.

Loki Labs

Loki Labs

Loki Labs provides expert cyber security solutions and services, including vulnerability assessments & penetration testing, emergency incident response, and managed security.

Polaris Infosec

Polaris Infosec

Polaris Web Presence Protection (WPP) is powered by our proprietary artificial intelligence and machine learning engine to ensure that attacks are stopped before they affect your business.

Carson McDowell

Carson McDowell

Carson McDowell are one of Northern Ireland's leading law firms. We are the law firm of choice for many of Northern Ireland's Top 100 companies as well as international companies doing business here.

Sansec

Sansec

Sansec is the global leader in eCommerce malware and vulnerability detection. We help you to stay ahead of hackers!

Opus Security

Opus Security

Opus dramatically reduces cloud security risks by enabling teams to define, orchestrate, automate and measure remediation processes across the entire distributed organization.

Kompleye

Kompleye

Kompleye is a recognized cybersecurity and compliance audit organization that offer a comprehensive solution for different industries.

StealthPath

StealthPath

StealthPath is focused on endpoint protection, securing the “implicit trust” vulnerabilities of current leading information security solutions.

Cydea

Cydea

Cydea are an optimistic cyber security consultancy of experts in security, data, technology and design that want to build a safer, more secure world where more things go right.